This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: Qm5zaXQLaYEEUF2e8g1wBZdIL9ihTAl3U3ZemPCUW+c= Subject key identifier: F8:04:5D:E7:A7:9D:D6:E4:BE:84:02:FD:47:83:7C:F4:4F:6B:97:6F Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 07ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 07E8 Signing time: Thu 04 Dec 2025 20:09:53 +0000 Manifest this update: Thu 04 Dec 2025 20:09:52 +0000 Manifest next update: Thu 11 Dec 2025 20:09:52 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: vQM9ZLOnDpw/K31Lh6aKNGMAVYa+s8Tnb7wnNRhK7vk=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2029 (0x7ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Dec 4 20:09:52 2025 GMT Not After : Dec 11 20:09:52 2025 GMT Subject: CN=6931ea91-a3d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9c:e9:b2:28:00:c1:4a:a4:31:61:ab:59:d3: 6a:ad:92:08:3b:22:09:85:d6:20:cc:35:6a:32:60: 57:22:bc:5c:ad:d7:0f:08:6e:0a:f8:23:81:fa:a5: 9f:62:5b:73:db:70:18:02:7a:a0:3a:9d:9b:d7:8d: fd:e3:8e:1d:6b:3c:0f:ed:03:5e:b9:09:f2:f9:49: 23:f7:cd:c5:21:84:47:08:e3:4d:9a:96:7d:6e:64: c0:b7:20:3b:1f:de:4d:43:04:8b:f3:7b:cc:a0:88: 01:97:8a:6a:cf:40:f8:19:3f:c2:90:d4:bd:85:6e: 29:06:4a:f2:de:91:45:f4:e5:f7:52:f3:6a:7a:5c: f2:7d:4c:8d:b7:63:b2:76:78:c2:3c:3e:92:0f:db: 6d:1f:b3:c3:49:4d:ff:d1:00:7a:b2:13:97:09:f5: e1:64:40:6f:a7:90:0d:8a:78:4c:45:36:88:1b:08: c1:17:e2:d0:bd:f2:c2:54:9c:cd:48:72:51:b4:fb: f1:56:a0:d5:64:95:30:5b:15:40:8c:05:c1:be:82: 23:1e:fb:52:1a:dc:66:3a:fb:8d:5e:10:58:6f:75: 93:6d:35:98:d2:80:7a:b0:d1:ff:b6:c9:d2:f1:b4: c8:4a:ea:ff:23:89:2f:1c:31:50:d3:ba:0c:48:22: 28:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:04:5D:E7:A7:9D:D6:E4:BE:84:02:FD:47:83:7C:F4:4F:6B:97:6F X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:32:74:2e:ea:4c:d2:5c:c3:f6:49:d2:55:3d:0f:0c:5c:58: d6:e2:42:a5:01:dd:63:cc:fd:b9:15:bc:3b:b6:0e:25:c2:08: 05:7a:49:fe:1c:d3:3e:6e:f6:8f:91:2f:c5:26:de:cb:f8:13: 2b:54:44:52:42:d7:19:f2:35:58:c5:8f:70:f3:19:82:f8:1b: fd:a6:73:e5:59:7b:83:29:eb:52:d6:bd:61:f5:df:3b:ae:0e: 8a:d7:18:bb:f6:e1:52:4c:c3:0a:8f:ba:ab:52:bc:c4:f9:50: 82:80:87:4f:ef:f3:d3:bc:d3:5b:14:9c:5f:9f:b2:df:c4:1f: ed:af:80:56:d6:d1:32:15:51:c2:1a:4a:8d:d6:b3:7b:c0:55: 58:bf:28:40:3e:c5:33:67:1d:1c:ff:4a:35:3f:69:a2:c9:d5: 84:a4:be:47:a5:1d:98:30:e4:d6:6e:95:19:1c:8a:58:19:b7: 0f:ec:41:b7:d2:a9:39:ad:a7:da:8b:fd:54:d5:28:c8:f6:de: 06:62:d1:d2:6b:56:4e:6a:bc:21:e9:12:ba:e1:92:99:f9:f5: a0:d6:dc:21:62:70:4f:c5:03:99:c5:ef:25:08:73:18:0f:da: 54:bc:41:04:6d:22:2d:58:fa:e2:f5:4c:88:fa:ad:e8:15:ed: ad:ae:4e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUxMjA0MjAwOTUyWhcNMjUxMjExMjAwOTUyWjAYMRYwFAYD VQQDEw02OTMxZWE5MS1hM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5zpsigAwUqkMWGrWdNqrZIIOyIJhdYgzDVqMmBXIrxcrdcPCG4K+COB+qWf Yltz23AYAnqgOp2b1439444dazwP7QNeuQny+Ukj983FIYRHCONNmpZ9bmTAtyA7 H95NQwSL83vMoIgBl4pqz0D4GT/CkNS9hW4pBkry3pFF9OX3UvNqelzyfUyNt2Oy dnjCPD6SD9ttH7PDSU3/0QB6shOXCfXhZEBvp5ANinhMRTaIGwjBF+LQvfLCVJzN SHJRtPvxVqDVZJUwWxVAjAXBvoIjHvtSGtxmOvuNXhBYb3WTbTWY0oB6sNH/tsnS 8bTISur/I4kvHDFQ07oMSCIoDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgEXeen ndbkvoQC/UeDfPRPa5dvMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaMnQu6kzSXMP2SdJVPQ8MXFjW4kKlAd1jzP25Fbw7tg4lwggFekn+ HNM+bvaPkS/FJt7L+BMrVERSQtcZ8jVYxY9w8xmC+Bv9pnPlWXuDKetS1r1h9d87 rg6K1xi79uFSTMMKj7qrUrzE+VCCgIdP7/PTvNNbFJxfn7LfxB/tr4BW1tEyFVHC GkqN1rN7wFVYvyhAPsUzZx0c/0o1P2miydWEpL5HpR2YMOTWbpUZHIpYGbcP7EG3 0qk5rafai/1U1SjI9t4GYtHSa1ZOarwh6RK64ZKZ+fWg1twhYnBPxQOZxe8lCHMY D9pUvEEEbSItWPri9UyI+q3oFe2trk4g -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:51 2025 by rpki-client